Installations
npm install biome-config-airlightDeveloper Guide
Typescript
No
Module System
CommonJS
Min. Node Version
>=18.20.3
Node Version
20.15.0
NPM Version
10.7.0
Score
61.9
Supply Chain
66.2
Quality
80.5
Maintenance
100
Vulnerability
99.6
License
Releases
eslint-config-airlight-react-v5.4.3
Published on 15 Aug 2024
eslint-config-airlight-node-v5.6.3
Published on 15 Aug 2024
eslint-config-airlight-base-v7.7.1
Published on 15 Aug 2024
eslint-config-airlight-react-v5.4.2
Published on 14 Aug 2024
eslint-config-airlight-node-v5.6.2
Published on 14 Aug 2024
eslint-config-airlight-base-v7.7.0
Published on 14 Aug 2024
Contributors
Unable to fetch Contributors
Languages
JavaScript (96.07%)
Shell (3.93%)
Developer
dalisoft
Download Statistics
Total Downloads
321
Last Day
6
Last Week
6
Last Month
8
Last Year
321
GitHub Statistics
6 Stars
3,119 Commits
1 Forks
4 Watching
5 Branches
1 Contributors
Maintainers
Package Meta Information
Latest Version
1.1.2
Package Id
biome-config-airlight@1.1.2
Unpacked Size
2.12 kB
Size
1.00 kB
File Count
4
NPM Version
10.7.0
Node Version
20.15.0
Publised On
07 Jul 2024
Total Downloads
Cumulative downloads
Total Downloads
321
Last day
0%
6
Compared to previous day
Last week
500%
6
Compared to previous week
Last month
-11.1%
8
Compared to previous month
Last year
0%
321
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Peer Dependencies
1
biome-config-airlight
Biome configuration to use with combine of eslint-config-airlight-node
Installation
1npm install biome-config-airlight --save-dev 2# or 3yarn add biome-config-airlight -D
Usage
biome.json
1{ 2 "$schema": "https://biomejs.dev/schemas/1.4.1/schema.json", 3 "extends": ["./node_modules/biome-config-airlight/biome.json"] 4}
Integration
dprint
Follow guide from here, copy content of dprint-extends.json and paste (not replace entirely) on your dprint.json config
License
MIT
No vulnerabilities found.
Reason
30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
5 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-pppg-cpfq-h7wr
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
- Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: jobLevel 'contents' permission set to 'write': .github/workflows/lint_release.yml:49
- Warn: topLevel 'contents' permission set to 'write': .github/workflows/automerge.yml:6
- Warn: no topLevel permission defined: .github/workflows/lint_release.yml:1
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/automerge.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/dalisoft/airlight/automerge.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint_release.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/dalisoft/airlight/lint_release.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint_release.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/dalisoft/airlight/lint_release.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint_release.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/dalisoft/airlight/lint_release.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint_release.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/dalisoft/airlight/lint_release.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint_release.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/dalisoft/airlight/lint_release.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint_release.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/dalisoft/airlight/lint_release.yml/master?enable=pin
- Info: 0 out of 4 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 3 third-party GitHubAction dependencies pinned
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 30 are checked with a SAST tool
Score
4.8
/10
Last Scanned on 2024-12-23
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More